On Wed, 2025-02-26 at 15:23 -0500, Michael Jeanson wrote: > On Wed, 29 Jan 2025 11:05:27 +0100 Felix Moessbauer > <felix.moessba...@siemens.com> wrote: > > Package: lttng-tools > > Version: 2.13.9-1+b1 > > Severity: normal > > > > Dear Maintainer, > > > > the package contains a systemd service lttng-sessiond, which auto- > > starts > > and by that loads lttng kernel modules (e.g. lttng_kretprobes). > > This is > > problematic, as these are out-of-tree modules which taint the > > kernel. > > Also it does not work if the modules are not installed or cannot be > > loaded (e.g. due to secure boot / kernel lockdown). > > > > I hereby recommend to install that service but do not enable it. If > > a > > user wants to debug with lttng, it can be started on demand. > > > > Best regards, > > Felix Moessbauer > > Siemens AG > > Hi, > > I think the default configuration should enable kernel tracing which > is > what most users want.
Hi, at least for me as a user it was not clear that a '-tools' package also enables a service. If the package had been called '-daemon' or alike, things look different. I did not check what the Debian policies say about this case (if they state something at all). > For your specific use-case I would recommend > either not installing 'lttng-modules-dkms' or simply disabling the > lttng-sessiond systemd service. Of course this is possible, but my assumption is that users explicitly install the kernel module to use it on-demand. Usually these tracers are only running when debugging but not all the time. By that, the users install all the components - but they should only run when needed. Best regards, Felix > > Regards, > > Michael -- Siemens AG Linux Expert Center Friedrich-Ludwig-Bauer-Str. 3 85748 Garching, Germany
